Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

86 matches found

OSSF Malicious Packages
OSSF Malicious Packagesadded last week11 views

Malicious code in @jagreehal/workflow (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 84103acc1e6580ad54c7a89f1ce423e9ac0a0ca4b943879c6f80e9e46fb23fce Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

5.7AI score
Exploits0References3
OSSF Malicious Packages
OSSF Malicious Packagesadded 2026/06/01 3:13 p.m.12 views

Malicious code in @chat-template/auth (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 90c0b7addd5c00b1a582b2097be6020f543e892e5189b58bd0ba94d94e1e5056 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

5.8AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packagesadded 2026/05/14 3:49 p.m.8 views

Malicious code in solidity-lib (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 12e7b93d8eb164aafa0ae5488f7f7ceff21ceedac5f762e6c2618e85854df65e Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

5.8AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packagesadded 2026/05/12 12:20 a.m.5 views

Malicious code in @squawk/flightplan (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e10ea8e442eceb45822eebfabfb86917c9a166af2490c6e670da321110d04d47 The package @squawk/flightplan was found to contain malicious code. Source: ghsa-malware...

5.8AI score
Exploits0References6
OSSF Malicious Packages
OSSF Malicious Packagesadded 2026/05/11 11:59 p.m.6 views

Malicious code in @tanstack/vue-router-ssr-query (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 925332e137c53fc83198f6ce65ec615c060124cbd8d1a5b23b9186c6494dbfba Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

5.8AI score
Exploits0References6
OSSF Malicious Packages
OSSF Malicious Packagesadded 2026/04/23 4:8 p.m.6 views

Malicious code in hls.js (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 96d28bd3e78b3ca60b3356380f0d7931659606c2b5def5865480d838ad21a0b3 The package hls.js was found to contain malicious code. Source: ghsa-malware 04b58b7f11fd42610f3056d4bc9aa84804d2ab9e657d7b84771cec1efe363ba9 Any...

5.7AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packagesadded 2026/04/13 3:25 p.m.2 views

Malicious code in dwaiter-company-web (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 602a450ab8f9d48b5e7ca03f6e4cf89803a6f1a0e6e35d453c92e59143096577 The package dwaiter-company-web was found to contain malicious code. Source: ghsa-malware...

5.7AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packagesadded 2026/03/22 6:26 p.m.5 views

Malicious code in @emilgroup/task-sdk (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e4aef8ca2987206595d5c54a2df6265669bdb67ca99915bb763ac38f2d6a46d7 The package @emilgroup/task-sdk was found to contain malicious code. Source: ghsa-malware...

5.8AI score
Exploits0References4
OSSF Malicious Packages
OSSF Malicious Packagesadded 2026/01/12 1:57 a.m.5 views

Malicious code in analytics-browser (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d14b7ad7441a8663be12ffffb8132ef2a0b0124006d5df1b3448d6f722e4f808 The package analytics-browser was found to contain malicious code. Source: ghsa-malware...

6.9AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/12/15 6:2 a.m.5 views

Malicious code in phx-core (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6b09229dc15cf8c3ce04a8a0a7e5cb43d43587ada9469f2a238c46a52927f94d The package phx-core was found to contain malicious code. Source: ghsa-malware 44cd2845eda5ed69922e3450a19b821ff762b61ea14e981648e9637faafcee3d Any...

6.9AI score
Exploits0References3
OSV
OSVadded 2025/12/10 1:58 a.m.2 views

MAL-2025-192413 Malicious code in modules-runtime (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e707f153606cc933eafdfa4c883bf1092791f4fe0e80278d963dda8dd5291a46 The package modules-runtime was found to contain malicious code. Source: ghsa-malware e0c351f7e54009deb9f1a8fa206a6cc720b4a472a7b969018b50ae235fcac91...

6.8AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/12/10 1:57 a.m.4 views

Malicious code in fastavro (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b8e01c7f0d2603f1d6cf541b7aa69c4bf9253ad1cd6b970a3337db957668a420 The package fastavro was found to contain malicious code. Source: ghsa-malware dfa83913e0a60ce0006e336f2f9f837aac0fa16d414d3c4c149562e19aed7474 Any...

6.9AI score
Exploits0References1
OSV
OSVadded 2025/10/29 10:51 p.m.2 views

MAL-2025-48967 Malicious code in @gitlab-test/pnpm-v9 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 352b39cbb73b3231bb6a6698230853fb58dd0313c7187e98a39dba4502226b02 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.8AI score
Exploits0References2
OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/10/28 2:10 a.m.2 views

Malicious code in @jameson777/mytest7 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b3923d583dcf8b3acb9a0d9917f1cfff2551863cecf0e4a5107862b4c5f27d5d The package @jameson777/mytest7 was found to contain malicious code. Source: ghsa-malware...

6.9AI score
Exploits0References3
OSV
OSVadded 2025/10/09 5:26 a.m.1 views

MAL-2025-48099 Malicious code in @testcarrot/supply4 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 58c554af87914a43458082a747e4709d285f86a900c2c36e1f9d548a0281608e Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSV
OSVadded 2025/10/07 4:38 a.m.1 views

MAL-2025-48009 Malicious code in uniswappools (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4a0b653b79b20ce2e2500a72394fe63b315bbd12824189928aac357539ea2166 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/10/07 2:39 a.m.3 views

Malicious code in solarpeng_node_eval (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7d1e85f15a5e94e61b12759aeb924685d04a4755d7de2f57df2a81ba1c8cd549 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/10/02 2:28 p.m.2 views

Malicious code in pycodestyle (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c8041596cf0ce7d592005bc7b6e2a389f3becf1c4f14864a8b2951c93f29711b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/07/09 12:1 a.m.3 views

Malicious code in soundcast (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 379b1dd8b190afa55771e449b6c9e079ab30456e18816ffc30f20d8252a07932 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/06/30 9:13 a.m.2 views

Malicious code in youku-search (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b00b0a5a0eba683c7f82dad3045f887ca7a71565b92dd9beaa8b3e54bc74b03c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
Rows per page
Query Builder